1 // SPDX-License-Identifier: GPL-2.0-or-later
3 * NET4: Implementation of BSD Unix domain sockets.
5 * Authors: Alan Cox, <alan@lxorguk.ukuu.org.uk>
8 * Linus Torvalds : Assorted bug cures.
9 * Niibe Yutaka : async I/O support.
10 * Carsten Paeth : PF_UNIX check, address fixes.
11 * Alan Cox : Limit size of allocated blocks.
12 * Alan Cox : Fixed the stupid socketpair bug.
13 * Alan Cox : BSD compatibility fine tuning.
14 * Alan Cox : Fixed a bug in connect when interrupted.
15 * Alan Cox : Sorted out a proper draft version of
16 * file descriptor passing hacked up from
18 * Marty Leisner : Fixes to fd passing
19 * Nick Nevin : recvmsg bugfix.
20 * Alan Cox : Started proper garbage collector
21 * Heiko EiBfeldt : Missing verify_area check
22 * Alan Cox : Started POSIXisms
23 * Andreas Schwab : Replace inode by dentry for proper
25 * Kirk Petersen : Made this a module
26 * Christoph Rohland : Elegant non-blocking accept/connect algorithm.
28 * Alexey Kuznetosv : Repaired (I hope) bugs introduces
29 * by above two patches.
30 * Andrea Arcangeli : If possible we block in connect(2)
31 * if the max backlog of the listen socket
32 * is been reached. This won't break
33 * old apps and it will avoid huge amount
34 * of socks hashed (this for unix_gc()
35 * performances reasons).
36 * Security fix that limits the max
37 * number of socks to 2*max_files and
38 * the number of skb queueable in the
40 * Artur Skawina : Hash function optimizations
41 * Alexey Kuznetsov : Full scale SMP. Lot of bugs are introduced 8)
42 * Malcolm Beattie : Set peercred for socketpair
43 * Michal Ostrowski : Module initialization cleanup.
44 * Arnaldo C. Melo : Remove MOD_{INC,DEC}_USE_COUNT,
45 * the core infrastructure is doing that
46 * for all net proto families now (2.5.69+)
48 * Known differences from reference BSD that was tested:
51 * ECONNREFUSED is not returned from one end of a connected() socket to the
52 * other the moment one end closes.
53 * fstat() doesn't return st_dev=0, and give the blksize as high water mark
54 * and a fake inode identifier (nor the BSD first socket fstat twice bug).
56 * accept() returns a path name even if the connecting socket has closed
57 * in the meantime (BSD loses the path and gives up).
58 * accept() returns 0 length path for an unbound connector. BSD returns 16
59 * and a null first byte in the path (but not for gethost/peername - BSD bug ??)
60 * socketpair(...SOCK_RAW..) doesn't panic the kernel.
61 * BSD af_unix apparently has connect forgetting to block properly.
62 * (need to check this with the POSIX spec in detail)
64 * Differences from 2.0.0-11-... (ANK)
65 * Bug fixes and improvements.
66 * - client shutdown killed server socket.
67 * - removed all useless cli/sti pairs.
69 * Semantic changes/extensions.
70 * - generic control message passing.
71 * - SCM_CREDENTIALS control message.
72 * - "Abstract" (not FS based) socket bindings.
73 * Abstract names are sequences of bytes (not zero terminated)
74 * started by 0, so that this name space does not intersect
78 #define pr_fmt(fmt) KBUILD_MODNAME ": " fmt
80 #include <linux/module.h>
81 #include <linux/kernel.h>
82 #include <linux/signal.h>
83 #include <linux/sched/signal.h>
84 #include <linux/errno.h>
85 #include <linux/string.h>
86 #include <linux/stat.h>
87 #include <linux/dcache.h>
88 #include <linux/namei.h>
89 #include <linux/socket.h>
91 #include <linux/fcntl.h>
92 #include <linux/termios.h>
93 #include <linux/sockios.h>
94 #include <linux/net.h>
97 #include <linux/slab.h>
98 #include <linux/uaccess.h>
99 #include <linux/skbuff.h>
100 #include <linux/netdevice.h>
101 #include <net/net_namespace.h>
102 #include <net/sock.h>
103 #include <net/tcp_states.h>
104 #include <net/af_unix.h>
105 #include <linux/proc_fs.h>
106 #include <linux/seq_file.h>
108 #include <linux/init.h>
109 #include <linux/poll.h>
110 #include <linux/rtnetlink.h>
111 #include <linux/mount.h>
112 #include <net/checksum.h>
113 #include <linux/security.h>
114 #include <linux/freezer.h>
115 #include <linux/file.h>
119 struct hlist_head unix_socket_table[2 * UNIX_HASH_SIZE];
120 EXPORT_SYMBOL_GPL(unix_socket_table);
121 DEFINE_SPINLOCK(unix_table_lock);
122 EXPORT_SYMBOL_GPL(unix_table_lock);
123 static atomic_long_t unix_nr_socks;
126 static struct hlist_head *unix_sockets_unbound(void *addr)
128 unsigned long hash = (unsigned long)addr;
132 hash %= UNIX_HASH_SIZE;
133 return &unix_socket_table[UNIX_HASH_SIZE + hash];
136 #define UNIX_ABSTRACT(sk) (unix_sk(sk)->addr->hash < UNIX_HASH_SIZE)
138 #ifdef CONFIG_SECURITY_NETWORK
139 static void unix_get_secdata(struct scm_cookie *scm, struct sk_buff *skb)
141 UNIXCB(skb).secid = scm->secid;
144 static inline void unix_set_secdata(struct scm_cookie *scm, struct sk_buff *skb)
146 scm->secid = UNIXCB(skb).secid;
149 static inline bool unix_secdata_eq(struct scm_cookie *scm, struct sk_buff *skb)
151 return (scm->secid == UNIXCB(skb).secid);
154 static inline void unix_get_secdata(struct scm_cookie *scm, struct sk_buff *skb)
157 static inline void unix_set_secdata(struct scm_cookie *scm, struct sk_buff *skb)
160 static inline bool unix_secdata_eq(struct scm_cookie *scm, struct sk_buff *skb)
164 #endif /* CONFIG_SECURITY_NETWORK */
167 * SMP locking strategy:
168 * hash table is protected with spinlock unix_table_lock
169 * each socket state is protected by separate spin lock.
172 static inline unsigned int unix_hash_fold(__wsum n)
174 unsigned int hash = (__force unsigned int)csum_fold(n);
177 return hash&(UNIX_HASH_SIZE-1);
180 #define unix_peer(sk) (unix_sk(sk)->peer)
182 static inline int unix_our_peer(struct sock *sk, struct sock *osk)
184 return unix_peer(osk) == sk;
187 static inline int unix_may_send(struct sock *sk, struct sock *osk)
189 return unix_peer(osk) == NULL || unix_our_peer(sk, osk);
192 static inline int unix_recvq_full(const struct sock *sk)
194 return skb_queue_len(&sk->sk_receive_queue) > sk->sk_max_ack_backlog;
197 static inline int unix_recvq_full_lockless(const struct sock *sk)
199 return skb_queue_len_lockless(&sk->sk_receive_queue) >
200 READ_ONCE(sk->sk_max_ack_backlog);
203 struct sock *unix_peer_get(struct sock *s)
211 unix_state_unlock(s);
214 EXPORT_SYMBOL_GPL(unix_peer_get);
216 static inline void unix_release_addr(struct unix_address *addr)
218 if (refcount_dec_and_test(&addr->refcnt))
223 * Check unix socket name:
224 * - should be not zero length.
225 * - if started by not zero, should be NULL terminated (FS object)
226 * - if started by zero, it is abstract name.
229 static int unix_mkname(struct sockaddr_un *sunaddr, int len, unsigned int *hashp)
233 if (len <= sizeof(short) || len > sizeof(*sunaddr))
235 if (!sunaddr || sunaddr->sun_family != AF_UNIX)
237 if (sunaddr->sun_path[0]) {
239 * This may look like an off by one error but it is a bit more
240 * subtle. 108 is the longest valid AF_UNIX path for a binding.
241 * sun_path[108] doesn't as such exist. However in kernel space
242 * we are guaranteed that it is a valid memory location in our
243 * kernel address buffer.
245 ((char *)sunaddr)[len] = 0;
246 len = strlen(sunaddr->sun_path)+1+sizeof(short);
250 *hashp = unix_hash_fold(csum_partial(sunaddr, len, 0));
254 static void __unix_remove_socket(struct sock *sk)
256 sk_del_node_init(sk);
259 static void __unix_insert_socket(struct hlist_head *list, struct sock *sk)
261 WARN_ON(!sk_unhashed(sk));
262 sk_add_node(sk, list);
265 static inline void unix_remove_socket(struct sock *sk)
267 spin_lock(&unix_table_lock);
268 __unix_remove_socket(sk);
269 spin_unlock(&unix_table_lock);
272 static inline void unix_insert_socket(struct hlist_head *list, struct sock *sk)
274 spin_lock(&unix_table_lock);
275 __unix_insert_socket(list, sk);
276 spin_unlock(&unix_table_lock);
279 static struct sock *__unix_find_socket_byname(struct net *net,
280 struct sockaddr_un *sunname,
281 int len, int type, unsigned int hash)
285 sk_for_each(s, &unix_socket_table[hash ^ type]) {
286 struct unix_sock *u = unix_sk(s);
288 if (!net_eq(sock_net(s), net))
291 if (u->addr->len == len &&
292 !memcmp(u->addr->name, sunname, len))
298 static inline struct sock *unix_find_socket_byname(struct net *net,
299 struct sockaddr_un *sunname,
305 spin_lock(&unix_table_lock);
306 s = __unix_find_socket_byname(net, sunname, len, type, hash);
309 spin_unlock(&unix_table_lock);
313 static struct sock *unix_find_socket_byinode(struct inode *i)
317 spin_lock(&unix_table_lock);
319 &unix_socket_table[i->i_ino & (UNIX_HASH_SIZE - 1)]) {
320 struct dentry *dentry = unix_sk(s)->path.dentry;
322 if (dentry && d_backing_inode(dentry) == i) {
329 spin_unlock(&unix_table_lock);
333 /* Support code for asymmetrically connected dgram sockets
335 * If a datagram socket is connected to a socket not itself connected
336 * to the first socket (eg, /dev/log), clients may only enqueue more
337 * messages if the present receive queue of the server socket is not
338 * "too large". This means there's a second writeability condition
339 * poll and sendmsg need to test. The dgram recv code will do a wake
340 * up on the peer_wait wait queue of a socket upon reception of a
341 * datagram which needs to be propagated to sleeping would-be writers
342 * since these might not have sent anything so far. This can't be
343 * accomplished via poll_wait because the lifetime of the server
344 * socket might be less than that of its clients if these break their
345 * association with it or if the server socket is closed while clients
346 * are still connected to it and there's no way to inform "a polling
347 * implementation" that it should let go of a certain wait queue
349 * In order to propagate a wake up, a wait_queue_entry_t of the client
350 * socket is enqueued on the peer_wait queue of the server socket
351 * whose wake function does a wake_up on the ordinary client socket
352 * wait queue. This connection is established whenever a write (or
353 * poll for write) hit the flow control condition and broken when the
354 * association to the server socket is dissolved or after a wake up
358 static int unix_dgram_peer_wake_relay(wait_queue_entry_t *q, unsigned mode, int flags,
362 wait_queue_head_t *u_sleep;
364 u = container_of(q, struct unix_sock, peer_wake);
366 __remove_wait_queue(&unix_sk(u->peer_wake.private)->peer_wait,
368 u->peer_wake.private = NULL;
370 /* relaying can only happen while the wq still exists */
371 u_sleep = sk_sleep(&u->sk);
373 wake_up_interruptible_poll(u_sleep, key_to_poll(key));
378 static int unix_dgram_peer_wake_connect(struct sock *sk, struct sock *other)
380 struct unix_sock *u, *u_other;
384 u_other = unix_sk(other);
386 spin_lock(&u_other->peer_wait.lock);
388 if (!u->peer_wake.private) {
389 u->peer_wake.private = other;
390 __add_wait_queue(&u_other->peer_wait, &u->peer_wake);
395 spin_unlock(&u_other->peer_wait.lock);
399 static void unix_dgram_peer_wake_disconnect(struct sock *sk,
402 struct unix_sock *u, *u_other;
405 u_other = unix_sk(other);
406 spin_lock(&u_other->peer_wait.lock);
408 if (u->peer_wake.private == other) {
409 __remove_wait_queue(&u_other->peer_wait, &u->peer_wake);
410 u->peer_wake.private = NULL;
413 spin_unlock(&u_other->peer_wait.lock);
416 static void unix_dgram_peer_wake_disconnect_wakeup(struct sock *sk,
419 unix_dgram_peer_wake_disconnect(sk, other);
420 wake_up_interruptible_poll(sk_sleep(sk),
427 * - unix_peer(sk) == other
428 * - association is stable
430 static int unix_dgram_peer_wake_me(struct sock *sk, struct sock *other)
434 connected = unix_dgram_peer_wake_connect(sk, other);
436 /* If other is SOCK_DEAD, we want to make sure we signal
437 * POLLOUT, such that a subsequent write() can get a
438 * -ECONNREFUSED. Otherwise, if we haven't queued any skbs
439 * to other and its full, we will hang waiting for POLLOUT.
441 if (unix_recvq_full(other) && !sock_flag(other, SOCK_DEAD))
445 unix_dgram_peer_wake_disconnect(sk, other);
450 static int unix_writable(const struct sock *sk)
452 return sk->sk_state != TCP_LISTEN &&
453 (refcount_read(&sk->sk_wmem_alloc) << 2) <= sk->sk_sndbuf;
456 static void unix_write_space(struct sock *sk)
458 struct socket_wq *wq;
461 if (unix_writable(sk)) {
462 wq = rcu_dereference(sk->sk_wq);
463 if (skwq_has_sleeper(wq))
464 wake_up_interruptible_sync_poll(&wq->wait,
465 EPOLLOUT | EPOLLWRNORM | EPOLLWRBAND);
466 sk_wake_async(sk, SOCK_WAKE_SPACE, POLL_OUT);
471 /* When dgram socket disconnects (or changes its peer), we clear its receive
472 * queue of packets arrived from previous peer. First, it allows to do
473 * flow control based only on wmem_alloc; second, sk connected to peer
474 * may receive messages only from that peer. */
475 static void unix_dgram_disconnected(struct sock *sk, struct sock *other)
477 if (!skb_queue_empty(&sk->sk_receive_queue)) {
478 skb_queue_purge(&sk->sk_receive_queue);
479 wake_up_interruptible_all(&unix_sk(sk)->peer_wait);
481 /* If one link of bidirectional dgram pipe is disconnected,
482 * we signal error. Messages are lost. Do not make this,
483 * when peer was not connected to us.
485 if (!sock_flag(other, SOCK_DEAD) && unix_peer(other) == sk) {
486 other->sk_err = ECONNRESET;
487 other->sk_error_report(other);
492 static void unix_sock_destructor(struct sock *sk)
494 struct unix_sock *u = unix_sk(sk);
496 skb_queue_purge(&sk->sk_receive_queue);
498 WARN_ON(refcount_read(&sk->sk_wmem_alloc));
499 WARN_ON(!sk_unhashed(sk));
500 WARN_ON(sk->sk_socket);
501 if (!sock_flag(sk, SOCK_DEAD)) {
502 pr_info("Attempt to release alive unix socket: %p\n", sk);
507 unix_release_addr(u->addr);
509 atomic_long_dec(&unix_nr_socks);
511 sock_prot_inuse_add(sock_net(sk), sk->sk_prot, -1);
513 #ifdef UNIX_REFCNT_DEBUG
514 pr_debug("UNIX %p is destroyed, %ld are still alive.\n", sk,
515 atomic_long_read(&unix_nr_socks));
519 static void unix_release_sock(struct sock *sk, int embrion)
521 struct unix_sock *u = unix_sk(sk);
527 unix_remove_socket(sk);
532 sk->sk_shutdown = SHUTDOWN_MASK;
534 u->path.dentry = NULL;
536 state = sk->sk_state;
537 sk->sk_state = TCP_CLOSE;
538 unix_state_unlock(sk);
540 wake_up_interruptible_all(&u->peer_wait);
542 skpair = unix_peer(sk);
544 if (skpair != NULL) {
545 if (sk->sk_type == SOCK_STREAM || sk->sk_type == SOCK_SEQPACKET) {
546 unix_state_lock(skpair);
548 skpair->sk_shutdown = SHUTDOWN_MASK;
549 if (!skb_queue_empty(&sk->sk_receive_queue) || embrion)
550 skpair->sk_err = ECONNRESET;
551 unix_state_unlock(skpair);
552 skpair->sk_state_change(skpair);
553 sk_wake_async(skpair, SOCK_WAKE_WAITD, POLL_HUP);
556 unix_dgram_peer_wake_disconnect(sk, skpair);
557 sock_put(skpair); /* It may now die */
558 unix_peer(sk) = NULL;
561 /* Try to flush out this socket. Throw out buffers at least */
563 while ((skb = skb_dequeue(&sk->sk_receive_queue)) != NULL) {
564 if (state == TCP_LISTEN)
565 unix_release_sock(skb->sk, 1);
566 /* passed fds are erased in the kfree_skb hook */
567 UNIXCB(skb).consumed = skb->len;
576 /* ---- Socket is dead now and most probably destroyed ---- */
579 * Fixme: BSD difference: In BSD all sockets connected to us get
580 * ECONNRESET and we die on the spot. In Linux we behave
581 * like files and pipes do and wait for the last
584 * Can't we simply set sock->err?
586 * What the above comment does talk about? --ANK(980817)
589 if (unix_tot_inflight)
590 unix_gc(); /* Garbage collect fds */
593 static void init_peercred(struct sock *sk)
595 put_pid(sk->sk_peer_pid);
596 if (sk->sk_peer_cred)
597 put_cred(sk->sk_peer_cred);
598 sk->sk_peer_pid = get_pid(task_tgid(current));
599 sk->sk_peer_cred = get_current_cred();
602 static void copy_peercred(struct sock *sk, struct sock *peersk)
604 put_pid(sk->sk_peer_pid);
605 if (sk->sk_peer_cred)
606 put_cred(sk->sk_peer_cred);
607 sk->sk_peer_pid = get_pid(peersk->sk_peer_pid);
608 sk->sk_peer_cred = get_cred(peersk->sk_peer_cred);
611 static int unix_listen(struct socket *sock, int backlog)
614 struct sock *sk = sock->sk;
615 struct unix_sock *u = unix_sk(sk);
616 struct pid *old_pid = NULL;
619 if (sock->type != SOCK_STREAM && sock->type != SOCK_SEQPACKET)
620 goto out; /* Only stream/seqpacket sockets accept */
623 goto out; /* No listens on an unbound socket */
625 if (sk->sk_state != TCP_CLOSE && sk->sk_state != TCP_LISTEN)
627 if (backlog > sk->sk_max_ack_backlog)
628 wake_up_interruptible_all(&u->peer_wait);
629 sk->sk_max_ack_backlog = backlog;
630 sk->sk_state = TCP_LISTEN;
631 /* set credentials so connect can copy them */
636 unix_state_unlock(sk);
642 static int unix_release(struct socket *);
643 static int unix_bind(struct socket *, struct sockaddr *, int);
644 static int unix_stream_connect(struct socket *, struct sockaddr *,
645 int addr_len, int flags);
646 static int unix_socketpair(struct socket *, struct socket *);
647 static int unix_accept(struct socket *, struct socket *, int, bool);
648 static int unix_getname(struct socket *, struct sockaddr *, int);
649 static __poll_t unix_poll(struct file *, struct socket *, poll_table *);
650 static __poll_t unix_dgram_poll(struct file *, struct socket *,
652 static int unix_ioctl(struct socket *, unsigned int, unsigned long);
654 static int unix_compat_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg);
656 static int unix_shutdown(struct socket *, int);
657 static int unix_stream_sendmsg(struct socket *, struct msghdr *, size_t);
658 static int unix_stream_recvmsg(struct socket *, struct msghdr *, size_t, int);
659 static ssize_t unix_stream_sendpage(struct socket *, struct page *, int offset,
660 size_t size, int flags);
661 static ssize_t unix_stream_splice_read(struct socket *, loff_t *ppos,
662 struct pipe_inode_info *, size_t size,
664 static int unix_dgram_sendmsg(struct socket *, struct msghdr *, size_t);
665 static int unix_dgram_recvmsg(struct socket *, struct msghdr *, size_t, int);
666 static int unix_dgram_connect(struct socket *, struct sockaddr *,
668 static int unix_seqpacket_sendmsg(struct socket *, struct msghdr *, size_t);
669 static int unix_seqpacket_recvmsg(struct socket *, struct msghdr *, size_t,
672 static int unix_set_peek_off(struct sock *sk, int val)
674 struct unix_sock *u = unix_sk(sk);
676 if (mutex_lock_interruptible(&u->iolock))
679 sk->sk_peek_off = val;
680 mutex_unlock(&u->iolock);
686 static void unix_show_fdinfo(struct seq_file *m, struct socket *sock)
688 struct sock *sk = sock->sk;
692 u = unix_sk(sock->sk);
693 seq_printf(m, "scm_fds: %u\n", READ_ONCE(u->scm_stat.nr_fds));
697 #define unix_show_fdinfo NULL
700 static const struct proto_ops unix_stream_ops = {
702 .owner = THIS_MODULE,
703 .release = unix_release,
705 .connect = unix_stream_connect,
706 .socketpair = unix_socketpair,
707 .accept = unix_accept,
708 .getname = unix_getname,
712 .compat_ioctl = unix_compat_ioctl,
714 .listen = unix_listen,
715 .shutdown = unix_shutdown,
716 .setsockopt = sock_no_setsockopt,
717 .getsockopt = sock_no_getsockopt,
718 .sendmsg = unix_stream_sendmsg,
719 .recvmsg = unix_stream_recvmsg,
720 .mmap = sock_no_mmap,
721 .sendpage = unix_stream_sendpage,
722 .splice_read = unix_stream_splice_read,
723 .set_peek_off = unix_set_peek_off,
724 .show_fdinfo = unix_show_fdinfo,
727 static const struct proto_ops unix_dgram_ops = {
729 .owner = THIS_MODULE,
730 .release = unix_release,
732 .connect = unix_dgram_connect,
733 .socketpair = unix_socketpair,
734 .accept = sock_no_accept,
735 .getname = unix_getname,
736 .poll = unix_dgram_poll,
739 .compat_ioctl = unix_compat_ioctl,
741 .listen = sock_no_listen,
742 .shutdown = unix_shutdown,
743 .setsockopt = sock_no_setsockopt,
744 .getsockopt = sock_no_getsockopt,
745 .sendmsg = unix_dgram_sendmsg,
746 .recvmsg = unix_dgram_recvmsg,
747 .mmap = sock_no_mmap,
748 .sendpage = sock_no_sendpage,
749 .set_peek_off = unix_set_peek_off,
750 .show_fdinfo = unix_show_fdinfo,
753 static const struct proto_ops unix_seqpacket_ops = {
755 .owner = THIS_MODULE,
756 .release = unix_release,
758 .connect = unix_stream_connect,
759 .socketpair = unix_socketpair,
760 .accept = unix_accept,
761 .getname = unix_getname,
762 .poll = unix_dgram_poll,
765 .compat_ioctl = unix_compat_ioctl,
767 .listen = unix_listen,
768 .shutdown = unix_shutdown,
769 .setsockopt = sock_no_setsockopt,
770 .getsockopt = sock_no_getsockopt,
771 .sendmsg = unix_seqpacket_sendmsg,
772 .recvmsg = unix_seqpacket_recvmsg,
773 .mmap = sock_no_mmap,
774 .sendpage = sock_no_sendpage,
775 .set_peek_off = unix_set_peek_off,
776 .show_fdinfo = unix_show_fdinfo,
779 static struct proto unix_proto = {
781 .owner = THIS_MODULE,
782 .obj_size = sizeof(struct unix_sock),
785 static struct sock *unix_create1(struct net *net, struct socket *sock, int kern)
787 struct sock *sk = NULL;
790 atomic_long_inc(&unix_nr_socks);
791 if (atomic_long_read(&unix_nr_socks) > 2 * get_max_files())
794 sk = sk_alloc(net, PF_UNIX, GFP_KERNEL, &unix_proto, kern);
798 sock_init_data(sock, sk);
800 sk->sk_allocation = GFP_KERNEL_ACCOUNT;
801 sk->sk_write_space = unix_write_space;
802 sk->sk_max_ack_backlog = net->unx.sysctl_max_dgram_qlen;
803 sk->sk_destruct = unix_sock_destructor;
805 u->path.dentry = NULL;
807 spin_lock_init(&u->lock);
808 atomic_long_set(&u->inflight, 0);
809 INIT_LIST_HEAD(&u->link);
810 mutex_init(&u->iolock); /* single task reading lock */
811 mutex_init(&u->bindlock); /* single task binding lock */
812 init_waitqueue_head(&u->peer_wait);
813 init_waitqueue_func_entry(&u->peer_wake, unix_dgram_peer_wake_relay);
814 memset(&u->scm_stat, 0, sizeof(struct scm_stat));
815 unix_insert_socket(unix_sockets_unbound(sk), sk);
818 atomic_long_dec(&unix_nr_socks);
821 sock_prot_inuse_add(sock_net(sk), sk->sk_prot, 1);
827 static int unix_create(struct net *net, struct socket *sock, int protocol,
830 if (protocol && protocol != PF_UNIX)
831 return -EPROTONOSUPPORT;
833 sock->state = SS_UNCONNECTED;
835 switch (sock->type) {
837 sock->ops = &unix_stream_ops;
840 * Believe it or not BSD has AF_UNIX, SOCK_RAW though
844 sock->type = SOCK_DGRAM;
847 sock->ops = &unix_dgram_ops;
850 sock->ops = &unix_seqpacket_ops;
853 return -ESOCKTNOSUPPORT;
856 return unix_create1(net, sock, kern) ? 0 : -ENOMEM;
859 static int unix_release(struct socket *sock)
861 struct sock *sk = sock->sk;
866 unix_release_sock(sk, 0);
872 static int unix_autobind(struct socket *sock)
874 struct sock *sk = sock->sk;
875 struct net *net = sock_net(sk);
876 struct unix_sock *u = unix_sk(sk);
877 static u32 ordernum = 1;
878 struct unix_address *addr;
880 unsigned int retries = 0;
882 err = mutex_lock_interruptible(&u->bindlock);
891 addr = kzalloc(sizeof(*addr) + sizeof(short) + 16, GFP_KERNEL);
895 addr->name->sun_family = AF_UNIX;
896 refcount_set(&addr->refcnt, 1);
899 addr->len = sprintf(addr->name->sun_path+1, "%05x", ordernum) + 1 + sizeof(short);
900 addr->hash = unix_hash_fold(csum_partial(addr->name, addr->len, 0));
902 spin_lock(&unix_table_lock);
903 ordernum = (ordernum+1)&0xFFFFF;
905 if (__unix_find_socket_byname(net, addr->name, addr->len, sock->type,
907 spin_unlock(&unix_table_lock);
909 * __unix_find_socket_byname() may take long time if many names
910 * are already in use.
913 /* Give up if all names seems to be in use. */
914 if (retries++ == 0xFFFFF) {
921 addr->hash ^= sk->sk_type;
923 __unix_remove_socket(sk);
924 smp_store_release(&u->addr, addr);
925 __unix_insert_socket(&unix_socket_table[addr->hash], sk);
926 spin_unlock(&unix_table_lock);
929 out: mutex_unlock(&u->bindlock);
933 static struct sock *unix_find_other(struct net *net,
934 struct sockaddr_un *sunname, int len,
935 int type, unsigned int hash, int *error)
941 if (sunname->sun_path[0]) {
943 err = kern_path(sunname->sun_path, LOOKUP_FOLLOW, &path);
946 inode = d_backing_inode(path.dentry);
947 err = inode_permission(inode, MAY_WRITE);
952 if (!S_ISSOCK(inode->i_mode))
954 u = unix_find_socket_byinode(inode);
958 if (u->sk_type == type)
964 if (u->sk_type != type) {
970 u = unix_find_socket_byname(net, sunname, len, type, hash);
972 struct dentry *dentry;
973 dentry = unix_sk(u)->path.dentry;
975 touch_atime(&unix_sk(u)->path);
988 static int unix_mknod(const char *sun_path, umode_t mode, struct path *res)
990 struct dentry *dentry;
994 * Get the parent directory, calculate the hash for last
997 dentry = kern_path_create(AT_FDCWD, sun_path, &path, 0);
998 err = PTR_ERR(dentry);
1003 * All right, let's create it.
1005 err = security_path_mknod(&path, dentry, mode, 0);
1007 err = vfs_mknod(d_inode(path.dentry), dentry, mode, 0);
1009 res->mnt = mntget(path.mnt);
1010 res->dentry = dget(dentry);
1013 done_path_create(&path, dentry);
1017 static int unix_bind(struct socket *sock, struct sockaddr *uaddr, int addr_len)
1019 struct sock *sk = sock->sk;
1020 struct net *net = sock_net(sk);
1021 struct unix_sock *u = unix_sk(sk);
1022 struct sockaddr_un *sunaddr = (struct sockaddr_un *)uaddr;
1023 char *sun_path = sunaddr->sun_path;
1026 struct unix_address *addr;
1027 struct hlist_head *list;
1028 struct path path = { };
1031 if (addr_len < offsetofend(struct sockaddr_un, sun_family) ||
1032 sunaddr->sun_family != AF_UNIX)
1035 if (addr_len == sizeof(short)) {
1036 err = unix_autobind(sock);
1040 err = unix_mkname(sunaddr, addr_len, &hash);
1046 umode_t mode = S_IFSOCK |
1047 (SOCK_INODE(sock)->i_mode & ~current_umask());
1048 err = unix_mknod(sun_path, mode, &path);
1056 err = mutex_lock_interruptible(&u->bindlock);
1065 addr = kmalloc(sizeof(*addr)+addr_len, GFP_KERNEL);
1069 memcpy(addr->name, sunaddr, addr_len);
1070 addr->len = addr_len;
1071 addr->hash = hash ^ sk->sk_type;
1072 refcount_set(&addr->refcnt, 1);
1075 addr->hash = UNIX_HASH_SIZE;
1076 hash = d_backing_inode(path.dentry)->i_ino & (UNIX_HASH_SIZE - 1);
1077 spin_lock(&unix_table_lock);
1079 list = &unix_socket_table[hash];
1081 spin_lock(&unix_table_lock);
1083 if (__unix_find_socket_byname(net, sunaddr, addr_len,
1084 sk->sk_type, hash)) {
1085 unix_release_addr(addr);
1089 list = &unix_socket_table[addr->hash];
1093 __unix_remove_socket(sk);
1094 smp_store_release(&u->addr, addr);
1095 __unix_insert_socket(list, sk);
1098 spin_unlock(&unix_table_lock);
1100 mutex_unlock(&u->bindlock);
1108 static void unix_state_double_lock(struct sock *sk1, struct sock *sk2)
1110 if (unlikely(sk1 == sk2) || !sk2) {
1111 unix_state_lock(sk1);
1115 unix_state_lock(sk1);
1116 unix_state_lock_nested(sk2);
1118 unix_state_lock(sk2);
1119 unix_state_lock_nested(sk1);
1123 static void unix_state_double_unlock(struct sock *sk1, struct sock *sk2)
1125 if (unlikely(sk1 == sk2) || !sk2) {
1126 unix_state_unlock(sk1);
1129 unix_state_unlock(sk1);
1130 unix_state_unlock(sk2);
1133 static int unix_dgram_connect(struct socket *sock, struct sockaddr *addr,
1134 int alen, int flags)
1136 struct sock *sk = sock->sk;
1137 struct net *net = sock_net(sk);
1138 struct sockaddr_un *sunaddr = (struct sockaddr_un *)addr;
1144 if (alen < offsetofend(struct sockaddr, sa_family))
1147 if (addr->sa_family != AF_UNSPEC) {
1148 err = unix_mkname(sunaddr, alen, &hash);
1153 if (test_bit(SOCK_PASSCRED, &sock->flags) &&
1154 !unix_sk(sk)->addr && (err = unix_autobind(sock)) != 0)
1158 other = unix_find_other(net, sunaddr, alen, sock->type, hash, &err);
1162 unix_state_double_lock(sk, other);
1164 /* Apparently VFS overslept socket death. Retry. */
1165 if (sock_flag(other, SOCK_DEAD)) {
1166 unix_state_double_unlock(sk, other);
1172 if (!unix_may_send(sk, other))
1175 err = security_unix_may_send(sk->sk_socket, other->sk_socket);
1181 * 1003.1g breaking connected state with AF_UNSPEC
1184 unix_state_double_lock(sk, other);
1188 * If it was connected, reconnect.
1190 if (unix_peer(sk)) {
1191 struct sock *old_peer = unix_peer(sk);
1192 unix_peer(sk) = other;
1193 unix_dgram_peer_wake_disconnect_wakeup(sk, old_peer);
1195 unix_state_double_unlock(sk, other);
1197 if (other != old_peer)
1198 unix_dgram_disconnected(sk, old_peer);
1201 unix_peer(sk) = other;
1202 unix_state_double_unlock(sk, other);
1207 unix_state_double_unlock(sk, other);
1213 static long unix_wait_for_peer(struct sock *other, long timeo)
1215 struct unix_sock *u = unix_sk(other);
1219 prepare_to_wait_exclusive(&u->peer_wait, &wait, TASK_INTERRUPTIBLE);
1221 sched = !sock_flag(other, SOCK_DEAD) &&
1222 !(other->sk_shutdown & RCV_SHUTDOWN) &&
1223 unix_recvq_full(other);
1225 unix_state_unlock(other);
1228 timeo = schedule_timeout(timeo);
1230 finish_wait(&u->peer_wait, &wait);
1234 static int unix_stream_connect(struct socket *sock, struct sockaddr *uaddr,
1235 int addr_len, int flags)
1237 struct sockaddr_un *sunaddr = (struct sockaddr_un *)uaddr;
1238 struct sock *sk = sock->sk;
1239 struct net *net = sock_net(sk);
1240 struct unix_sock *u = unix_sk(sk), *newu, *otheru;
1241 struct sock *newsk = NULL;
1242 struct sock *other = NULL;
1243 struct sk_buff *skb = NULL;
1249 err = unix_mkname(sunaddr, addr_len, &hash);
1254 if (test_bit(SOCK_PASSCRED, &sock->flags) && !u->addr &&
1255 (err = unix_autobind(sock)) != 0)
1258 timeo = sock_sndtimeo(sk, flags & O_NONBLOCK);
1260 /* First of all allocate resources.
1261 If we will make it after state is locked,
1262 we will have to recheck all again in any case.
1267 /* create new sock for complete connection */
1268 newsk = unix_create1(sock_net(sk), NULL, 0);
1272 /* Allocate skb for sending to listening sock */
1273 skb = sock_wmalloc(newsk, 1, 0, GFP_KERNEL);
1278 /* Find listening sock. */
1279 other = unix_find_other(net, sunaddr, addr_len, sk->sk_type, hash, &err);
1283 /* Latch state of peer */
1284 unix_state_lock(other);
1286 /* Apparently VFS overslept socket death. Retry. */
1287 if (sock_flag(other, SOCK_DEAD)) {
1288 unix_state_unlock(other);
1293 err = -ECONNREFUSED;
1294 if (other->sk_state != TCP_LISTEN)
1296 if (other->sk_shutdown & RCV_SHUTDOWN)
1299 if (unix_recvq_full(other)) {
1304 timeo = unix_wait_for_peer(other, timeo);
1306 err = sock_intr_errno(timeo);
1307 if (signal_pending(current))
1315 It is tricky place. We need to grab our state lock and cannot
1316 drop lock on peer. It is dangerous because deadlock is
1317 possible. Connect to self case and simultaneous
1318 attempt to connect are eliminated by checking socket
1319 state. other is TCP_LISTEN, if sk is TCP_LISTEN we
1320 check this before attempt to grab lock.
1322 Well, and we have to recheck the state after socket locked.
1328 /* This is ok... continue with connect */
1330 case TCP_ESTABLISHED:
1331 /* Socket is already connected */
1339 unix_state_lock_nested(sk);
1341 if (sk->sk_state != st) {
1342 unix_state_unlock(sk);
1343 unix_state_unlock(other);
1348 err = security_unix_stream_connect(sk, other, newsk);
1350 unix_state_unlock(sk);
1354 /* The way is open! Fastly set all the necessary fields... */
1357 unix_peer(newsk) = sk;
1358 newsk->sk_state = TCP_ESTABLISHED;
1359 newsk->sk_type = sk->sk_type;
1360 init_peercred(newsk);
1361 newu = unix_sk(newsk);
1362 RCU_INIT_POINTER(newsk->sk_wq, &newu->peer_wq);
1363 otheru = unix_sk(other);
1365 /* copy address information from listening to new sock
1367 * The contents of *(otheru->addr) and otheru->path
1368 * are seen fully set up here, since we have found
1369 * otheru in hash under unix_table_lock. Insertion
1370 * into the hash chain we'd found it in had been done
1371 * in an earlier critical area protected by unix_table_lock,
1372 * the same one where we'd set *(otheru->addr) contents,
1373 * as well as otheru->path and otheru->addr itself.
1375 * Using smp_store_release() here to set newu->addr
1376 * is enough to make those stores, as well as stores
1377 * to newu->path visible to anyone who gets newu->addr
1378 * by smp_load_acquire(). IOW, the same warranties
1379 * as for unix_sock instances bound in unix_bind() or
1380 * in unix_autobind().
1382 if (otheru->path.dentry) {
1383 path_get(&otheru->path);
1384 newu->path = otheru->path;
1386 refcount_inc(&otheru->addr->refcnt);
1387 smp_store_release(&newu->addr, otheru->addr);
1389 /* Set credentials */
1390 copy_peercred(sk, other);
1392 sock->state = SS_CONNECTED;
1393 sk->sk_state = TCP_ESTABLISHED;
1396 smp_mb__after_atomic(); /* sock_hold() does an atomic_inc() */
1397 unix_peer(sk) = newsk;
1399 unix_state_unlock(sk);
1401 /* take ten and and send info to listening sock */
1402 spin_lock(&other->sk_receive_queue.lock);
1403 __skb_queue_tail(&other->sk_receive_queue, skb);
1404 spin_unlock(&other->sk_receive_queue.lock);
1405 unix_state_unlock(other);
1406 other->sk_data_ready(other);
1412 unix_state_unlock(other);
1417 unix_release_sock(newsk, 0);
1423 static int unix_socketpair(struct socket *socka, struct socket *sockb)
1425 struct sock *ska = socka->sk, *skb = sockb->sk;
1427 /* Join our sockets back to back */
1430 unix_peer(ska) = skb;
1431 unix_peer(skb) = ska;
1435 if (ska->sk_type != SOCK_DGRAM) {
1436 ska->sk_state = TCP_ESTABLISHED;
1437 skb->sk_state = TCP_ESTABLISHED;
1438 socka->state = SS_CONNECTED;
1439 sockb->state = SS_CONNECTED;
1444 static void unix_sock_inherit_flags(const struct socket *old,
1447 if (test_bit(SOCK_PASSCRED, &old->flags))
1448 set_bit(SOCK_PASSCRED, &new->flags);
1449 if (test_bit(SOCK_PASSSEC, &old->flags))
1450 set_bit(SOCK_PASSSEC, &new->flags);
1453 static int unix_accept(struct socket *sock, struct socket *newsock, int flags,
1456 struct sock *sk = sock->sk;
1458 struct sk_buff *skb;
1462 if (sock->type != SOCK_STREAM && sock->type != SOCK_SEQPACKET)
1466 if (sk->sk_state != TCP_LISTEN)
1469 /* If socket state is TCP_LISTEN it cannot change (for now...),
1470 * so that no locks are necessary.
1473 skb = skb_recv_datagram(sk, 0, flags&O_NONBLOCK, &err);
1475 /* This means receive shutdown. */
1482 skb_free_datagram(sk, skb);
1483 wake_up_interruptible(&unix_sk(sk)->peer_wait);
1485 /* attach accepted sock to socket */
1486 unix_state_lock(tsk);
1487 newsock->state = SS_CONNECTED;
1488 unix_sock_inherit_flags(sock, newsock);
1489 sock_graft(tsk, newsock);
1490 unix_state_unlock(tsk);
1498 static int unix_getname(struct socket *sock, struct sockaddr *uaddr, int peer)
1500 struct sock *sk = sock->sk;
1501 struct unix_address *addr;
1502 DECLARE_SOCKADDR(struct sockaddr_un *, sunaddr, uaddr);
1506 sk = unix_peer_get(sk);
1516 addr = smp_load_acquire(&unix_sk(sk)->addr);
1518 sunaddr->sun_family = AF_UNIX;
1519 sunaddr->sun_path[0] = 0;
1520 err = sizeof(short);
1523 memcpy(sunaddr, addr->name, addr->len);
1530 static int unix_scm_to_skb(struct scm_cookie *scm, struct sk_buff *skb, bool send_fds)
1534 UNIXCB(skb).pid = get_pid(scm->pid);
1535 UNIXCB(skb).uid = scm->creds.uid;
1536 UNIXCB(skb).gid = scm->creds.gid;
1537 UNIXCB(skb).fp = NULL;
1538 unix_get_secdata(scm, skb);
1539 if (scm->fp && send_fds)
1540 err = unix_attach_fds(scm, skb);
1542 skb->destructor = unix_destruct_scm;
1546 static bool unix_passcred_enabled(const struct socket *sock,
1547 const struct sock *other)
1549 return test_bit(SOCK_PASSCRED, &sock->flags) ||
1550 !other->sk_socket ||
1551 test_bit(SOCK_PASSCRED, &other->sk_socket->flags);
1555 * Some apps rely on write() giving SCM_CREDENTIALS
1556 * We include credentials if source or destination socket
1557 * asserted SOCK_PASSCRED.
1559 static void maybe_add_creds(struct sk_buff *skb, const struct socket *sock,
1560 const struct sock *other)
1562 if (UNIXCB(skb).pid)
1564 if (unix_passcred_enabled(sock, other)) {
1565 UNIXCB(skb).pid = get_pid(task_tgid(current));
1566 current_uid_gid(&UNIXCB(skb).uid, &UNIXCB(skb).gid);
1570 static int maybe_init_creds(struct scm_cookie *scm,
1571 struct socket *socket,
1572 const struct sock *other)
1575 struct msghdr msg = { .msg_controllen = 0 };
1577 err = scm_send(socket, &msg, scm, false);
1581 if (unix_passcred_enabled(socket, other)) {
1582 scm->pid = get_pid(task_tgid(current));
1583 current_uid_gid(&scm->creds.uid, &scm->creds.gid);
1588 static bool unix_skb_scm_eq(struct sk_buff *skb,
1589 struct scm_cookie *scm)
1591 const struct unix_skb_parms *u = &UNIXCB(skb);
1593 return u->pid == scm->pid &&
1594 uid_eq(u->uid, scm->creds.uid) &&
1595 gid_eq(u->gid, scm->creds.gid) &&
1596 unix_secdata_eq(scm, skb);
1599 static void scm_stat_add(struct sock *sk, struct sk_buff *skb)
1601 struct scm_fp_list *fp = UNIXCB(skb).fp;
1602 struct unix_sock *u = unix_sk(sk);
1604 lockdep_assert_held(&sk->sk_receive_queue.lock);
1606 if (unlikely(fp && fp->count))
1607 u->scm_stat.nr_fds += fp->count;
1610 static void scm_stat_del(struct sock *sk, struct sk_buff *skb)
1612 struct scm_fp_list *fp = UNIXCB(skb).fp;
1613 struct unix_sock *u = unix_sk(sk);
1615 lockdep_assert_held(&sk->sk_receive_queue.lock);
1617 if (unlikely(fp && fp->count))
1618 u->scm_stat.nr_fds -= fp->count;
1622 * Send AF_UNIX data.
1625 static int unix_dgram_sendmsg(struct socket *sock, struct msghdr *msg,
1628 struct sock *sk = sock->sk;
1629 struct net *net = sock_net(sk);
1630 struct unix_sock *u = unix_sk(sk);
1631 DECLARE_SOCKADDR(struct sockaddr_un *, sunaddr, msg->msg_name);
1632 struct sock *other = NULL;
1633 int namelen = 0; /* fake GCC */
1636 struct sk_buff *skb;
1638 struct scm_cookie scm;
1643 err = scm_send(sock, msg, &scm, false);
1648 if (msg->msg_flags&MSG_OOB)
1651 if (msg->msg_namelen) {
1652 err = unix_mkname(sunaddr, msg->msg_namelen, &hash);
1659 other = unix_peer_get(sk);
1664 if (test_bit(SOCK_PASSCRED, &sock->flags) && !u->addr
1665 && (err = unix_autobind(sock)) != 0)
1669 if (len > sk->sk_sndbuf - 32)
1672 if (len > SKB_MAX_ALLOC) {
1673 data_len = min_t(size_t,
1674 len - SKB_MAX_ALLOC,
1675 MAX_SKB_FRAGS * PAGE_SIZE);
1676 data_len = PAGE_ALIGN(data_len);
1678 BUILD_BUG_ON(SKB_MAX_ALLOC < PAGE_SIZE);
1681 skb = sock_alloc_send_pskb(sk, len - data_len, data_len,
1682 msg->msg_flags & MSG_DONTWAIT, &err,
1683 PAGE_ALLOC_COSTLY_ORDER);
1687 err = unix_scm_to_skb(&scm, skb, true);
1691 skb_put(skb, len - data_len);
1692 skb->data_len = data_len;
1694 err = skb_copy_datagram_from_iter(skb, 0, &msg->msg_iter, len);
1698 timeo = sock_sndtimeo(sk, msg->msg_flags & MSG_DONTWAIT);
1703 if (sunaddr == NULL)
1706 other = unix_find_other(net, sunaddr, namelen, sk->sk_type,
1712 if (sk_filter(other, skb) < 0) {
1713 /* Toss the packet but do not return any error to the sender */
1719 unix_state_lock(other);
1722 if (!unix_may_send(sk, other))
1725 if (unlikely(sock_flag(other, SOCK_DEAD))) {
1727 * Check with 1003.1g - what should
1730 unix_state_unlock(other);
1734 unix_state_lock(sk);
1737 if (unix_peer(sk) == other) {
1738 unix_peer(sk) = NULL;
1739 unix_dgram_peer_wake_disconnect_wakeup(sk, other);
1741 unix_state_unlock(sk);
1743 unix_dgram_disconnected(sk, other);
1745 err = -ECONNREFUSED;
1747 unix_state_unlock(sk);
1757 if (other->sk_shutdown & RCV_SHUTDOWN)
1760 if (sk->sk_type != SOCK_SEQPACKET) {
1761 err = security_unix_may_send(sk->sk_socket, other->sk_socket);
1766 /* other == sk && unix_peer(other) != sk if
1767 * - unix_peer(sk) == NULL, destination address bound to sk
1768 * - unix_peer(sk) == sk by time of get but disconnected before lock
1771 unlikely(unix_peer(other) != sk &&
1772 unix_recvq_full_lockless(other))) {
1774 timeo = unix_wait_for_peer(other, timeo);
1776 err = sock_intr_errno(timeo);
1777 if (signal_pending(current))
1784 unix_state_unlock(other);
1785 unix_state_double_lock(sk, other);
1788 if (unix_peer(sk) != other ||
1789 unix_dgram_peer_wake_me(sk, other)) {
1797 goto restart_locked;
1801 if (unlikely(sk_locked))
1802 unix_state_unlock(sk);
1804 if (sock_flag(other, SOCK_RCVTSTAMP))
1805 __net_timestamp(skb);
1806 maybe_add_creds(skb, sock, other);
1807 spin_lock(&other->sk_receive_queue.lock);
1808 scm_stat_add(other, skb);
1809 __skb_queue_tail(&other->sk_receive_queue, skb);
1810 spin_unlock(&other->sk_receive_queue.lock);
1811 unix_state_unlock(other);
1812 other->sk_data_ready(other);
1819 unix_state_unlock(sk);
1820 unix_state_unlock(other);
1830 /* We use paged skbs for stream sockets, and limit occupancy to 32768
1831 * bytes, and a minimum of a full page.
1833 #define UNIX_SKB_FRAGS_SZ (PAGE_SIZE << get_order(32768))
1835 static int unix_stream_sendmsg(struct socket *sock, struct msghdr *msg,
1838 struct sock *sk = sock->sk;
1839 struct sock *other = NULL;
1841 struct sk_buff *skb;
1843 struct scm_cookie scm;
1844 bool fds_sent = false;
1848 err = scm_send(sock, msg, &scm, false);
1853 if (msg->msg_flags&MSG_OOB)
1856 if (msg->msg_namelen) {
1857 err = sk->sk_state == TCP_ESTABLISHED ? -EISCONN : -EOPNOTSUPP;
1861 other = unix_peer(sk);
1866 if (sk->sk_shutdown & SEND_SHUTDOWN)
1869 while (sent < len) {
1872 /* Keep two messages in the pipe so it schedules better */
1873 size = min_t(int, size, (sk->sk_sndbuf >> 1) - 64);
1875 /* allow fallback to order-0 allocations */
1876 size = min_t(int, size, SKB_MAX_HEAD(0) + UNIX_SKB_FRAGS_SZ);
1878 data_len = max_t(int, 0, size - SKB_MAX_HEAD(0));
1880 data_len = min_t(size_t, size, PAGE_ALIGN(data_len));
1882 skb = sock_alloc_send_pskb(sk, size - data_len, data_len,
1883 msg->msg_flags & MSG_DONTWAIT, &err,
1884 get_order(UNIX_SKB_FRAGS_SZ));
1888 /* Only send the fds in the first buffer */
1889 err = unix_scm_to_skb(&scm, skb, !fds_sent);
1896 skb_put(skb, size - data_len);
1897 skb->data_len = data_len;
1899 err = skb_copy_datagram_from_iter(skb, 0, &msg->msg_iter, size);
1905 unix_state_lock(other);
1907 if (sock_flag(other, SOCK_DEAD) ||
1908 (other->sk_shutdown & RCV_SHUTDOWN))
1911 maybe_add_creds(skb, sock, other);
1912 spin_lock(&other->sk_receive_queue.lock);
1913 scm_stat_add(other, skb);
1914 __skb_queue_tail(&other->sk_receive_queue, skb);
1915 spin_unlock(&other->sk_receive_queue.lock);
1916 unix_state_unlock(other);
1917 other->sk_data_ready(other);
1926 unix_state_unlock(other);
1929 if (sent == 0 && !(msg->msg_flags&MSG_NOSIGNAL))
1930 send_sig(SIGPIPE, current, 0);
1934 return sent ? : err;
1937 static ssize_t unix_stream_sendpage(struct socket *socket, struct page *page,
1938 int offset, size_t size, int flags)
1941 bool send_sigpipe = false;
1942 bool init_scm = true;
1943 struct scm_cookie scm;
1944 struct sock *other, *sk = socket->sk;
1945 struct sk_buff *skb, *newskb = NULL, *tail = NULL;
1947 if (flags & MSG_OOB)
1950 other = unix_peer(sk);
1951 if (!other || sk->sk_state != TCP_ESTABLISHED)
1956 unix_state_unlock(other);
1957 mutex_unlock(&unix_sk(other)->iolock);
1958 newskb = sock_alloc_send_pskb(sk, 0, 0, flags & MSG_DONTWAIT,
1964 /* we must acquire iolock as we modify already present
1965 * skbs in the sk_receive_queue and mess with skb->len
1967 err = mutex_lock_interruptible(&unix_sk(other)->iolock);
1969 err = flags & MSG_DONTWAIT ? -EAGAIN : -ERESTARTSYS;
1973 if (sk->sk_shutdown & SEND_SHUTDOWN) {
1975 send_sigpipe = true;
1979 unix_state_lock(other);
1981 if (sock_flag(other, SOCK_DEAD) ||
1982 other->sk_shutdown & RCV_SHUTDOWN) {
1984 send_sigpipe = true;
1985 goto err_state_unlock;
1989 err = maybe_init_creds(&scm, socket, other);
1991 goto err_state_unlock;
1995 skb = skb_peek_tail(&other->sk_receive_queue);
1996 if (tail && tail == skb) {
1998 } else if (!skb || !unix_skb_scm_eq(skb, &scm)) {
2005 } else if (newskb) {
2006 /* this is fast path, we don't necessarily need to
2007 * call to kfree_skb even though with newskb == NULL
2008 * this - does no harm
2010 consume_skb(newskb);
2014 if (skb_append_pagefrags(skb, page, offset, size)) {
2020 skb->data_len += size;
2021 skb->truesize += size;
2022 refcount_add(size, &sk->sk_wmem_alloc);
2025 err = unix_scm_to_skb(&scm, skb, false);
2027 goto err_state_unlock;
2028 spin_lock(&other->sk_receive_queue.lock);
2029 __skb_queue_tail(&other->sk_receive_queue, newskb);
2030 spin_unlock(&other->sk_receive_queue.lock);
2033 unix_state_unlock(other);
2034 mutex_unlock(&unix_sk(other)->iolock);
2036 other->sk_data_ready(other);
2041 unix_state_unlock(other);
2043 mutex_unlock(&unix_sk(other)->iolock);
2046 if (send_sigpipe && !(flags & MSG_NOSIGNAL))
2047 send_sig(SIGPIPE, current, 0);
2053 static int unix_seqpacket_sendmsg(struct socket *sock, struct msghdr *msg,
2057 struct sock *sk = sock->sk;
2059 err = sock_error(sk);
2063 if (sk->sk_state != TCP_ESTABLISHED)
2066 if (msg->msg_namelen)
2067 msg->msg_namelen = 0;
2069 return unix_dgram_sendmsg(sock, msg, len);
2072 static int unix_seqpacket_recvmsg(struct socket *sock, struct msghdr *msg,
2073 size_t size, int flags)
2075 struct sock *sk = sock->sk;
2077 if (sk->sk_state != TCP_ESTABLISHED)
2080 return unix_dgram_recvmsg(sock, msg, size, flags);
2083 static void unix_copy_addr(struct msghdr *msg, struct sock *sk)
2085 struct unix_address *addr = smp_load_acquire(&unix_sk(sk)->addr);
2088 msg->msg_namelen = addr->len;
2089 memcpy(msg->msg_name, addr->name, addr->len);
2093 static int unix_dgram_recvmsg(struct socket *sock, struct msghdr *msg,
2094 size_t size, int flags)
2096 struct scm_cookie scm;
2097 struct sock *sk = sock->sk;
2098 struct unix_sock *u = unix_sk(sk);
2099 struct sk_buff *skb, *last;
2108 timeo = sock_rcvtimeo(sk, flags & MSG_DONTWAIT);
2111 mutex_lock(&u->iolock);
2113 skip = sk_peek_offset(sk, flags);
2114 skb = __skb_try_recv_datagram(sk, &sk->sk_receive_queue, flags,
2115 scm_stat_del, &skip, &err, &last);
2119 mutex_unlock(&u->iolock);
2124 !__skb_wait_for_more_packets(sk, &sk->sk_receive_queue,
2125 &err, &timeo, last));
2127 if (!skb) { /* implies iolock unlocked */
2128 unix_state_lock(sk);
2129 /* Signal EOF on disconnected non-blocking SEQPACKET socket. */
2130 if (sk->sk_type == SOCK_SEQPACKET && err == -EAGAIN &&
2131 (sk->sk_shutdown & RCV_SHUTDOWN))
2133 unix_state_unlock(sk);
2137 if (wq_has_sleeper(&u->peer_wait))
2138 wake_up_interruptible_sync_poll(&u->peer_wait,
2139 EPOLLOUT | EPOLLWRNORM |
2143 unix_copy_addr(msg, skb->sk);
2145 if (size > skb->len - skip)
2146 size = skb->len - skip;
2147 else if (size < skb->len - skip)
2148 msg->msg_flags |= MSG_TRUNC;
2150 err = skb_copy_datagram_msg(skb, skip, msg, size);
2154 if (sock_flag(sk, SOCK_RCVTSTAMP))
2155 __sock_recv_timestamp(msg, sk, skb);
2157 memset(&scm, 0, sizeof(scm));
2159 scm_set_cred(&scm, UNIXCB(skb).pid, UNIXCB(skb).uid, UNIXCB(skb).gid);
2160 unix_set_secdata(&scm, skb);
2162 if (!(flags & MSG_PEEK)) {
2164 unix_detach_fds(&scm, skb);
2166 sk_peek_offset_bwd(sk, skb->len);
2168 /* It is questionable: on PEEK we could:
2169 - do not return fds - good, but too simple 8)
2170 - return fds, and do not return them on read (old strategy,
2172 - clone fds (I chose it for now, it is the most universal
2175 POSIX 1003.1g does not actually define this clearly
2176 at all. POSIX 1003.1g doesn't define a lot of things
2181 sk_peek_offset_fwd(sk, size);
2184 scm.fp = scm_fp_dup(UNIXCB(skb).fp);
2186 err = (flags & MSG_TRUNC) ? skb->len - skip : size;
2188 scm_recv(sock, msg, &scm, flags);
2191 skb_free_datagram(sk, skb);
2192 mutex_unlock(&u->iolock);
2198 * Sleep until more data has arrived. But check for races..
2200 static long unix_stream_data_wait(struct sock *sk, long timeo,
2201 struct sk_buff *last, unsigned int last_len,
2204 struct sk_buff *tail;
2207 unix_state_lock(sk);
2210 prepare_to_wait(sk_sleep(sk), &wait, TASK_INTERRUPTIBLE);
2212 tail = skb_peek_tail(&sk->sk_receive_queue);
2214 (tail && tail->len != last_len) ||
2216 (sk->sk_shutdown & RCV_SHUTDOWN) ||
2217 signal_pending(current) ||
2221 sk_set_bit(SOCKWQ_ASYNC_WAITDATA, sk);
2222 unix_state_unlock(sk);
2224 timeo = freezable_schedule_timeout(timeo);
2226 timeo = schedule_timeout(timeo);
2227 unix_state_lock(sk);
2229 if (sock_flag(sk, SOCK_DEAD))
2232 sk_clear_bit(SOCKWQ_ASYNC_WAITDATA, sk);
2235 finish_wait(sk_sleep(sk), &wait);
2236 unix_state_unlock(sk);
2240 static unsigned int unix_skb_len(const struct sk_buff *skb)
2242 return skb->len - UNIXCB(skb).consumed;
2245 struct unix_stream_read_state {
2246 int (*recv_actor)(struct sk_buff *, int, int,
2247 struct unix_stream_read_state *);
2248 struct socket *socket;
2250 struct pipe_inode_info *pipe;
2253 unsigned int splice_flags;
2256 static int unix_stream_read_generic(struct unix_stream_read_state *state,
2259 struct scm_cookie scm;
2260 struct socket *sock = state->socket;
2261 struct sock *sk = sock->sk;
2262 struct unix_sock *u = unix_sk(sk);
2264 int flags = state->flags;
2265 int noblock = flags & MSG_DONTWAIT;
2266 bool check_creds = false;
2271 size_t size = state->size;
2272 unsigned int last_len;
2274 if (unlikely(sk->sk_state != TCP_ESTABLISHED)) {
2279 if (unlikely(flags & MSG_OOB)) {
2284 target = sock_rcvlowat(sk, flags & MSG_WAITALL, size);
2285 timeo = sock_rcvtimeo(sk, noblock);
2287 memset(&scm, 0, sizeof(scm));
2289 /* Lock the socket to prevent queue disordering
2290 * while sleeps in memcpy_tomsg
2292 mutex_lock(&u->iolock);
2294 skip = max(sk_peek_offset(sk, flags), 0);
2299 struct sk_buff *skb, *last;
2302 unix_state_lock(sk);
2303 if (sock_flag(sk, SOCK_DEAD)) {
2307 last = skb = skb_peek(&sk->sk_receive_queue);
2308 last_len = last ? last->len : 0;
2311 if (copied >= target)
2315 * POSIX 1003.1g mandates this order.
2318 err = sock_error(sk);
2321 if (sk->sk_shutdown & RCV_SHUTDOWN)
2324 unix_state_unlock(sk);
2330 mutex_unlock(&u->iolock);
2332 timeo = unix_stream_data_wait(sk, timeo, last,
2333 last_len, freezable);
2335 if (signal_pending(current)) {
2336 err = sock_intr_errno(timeo);
2341 mutex_lock(&u->iolock);
2344 unix_state_unlock(sk);
2348 while (skip >= unix_skb_len(skb)) {
2349 skip -= unix_skb_len(skb);
2351 last_len = skb->len;
2352 skb = skb_peek_next(skb, &sk->sk_receive_queue);
2357 unix_state_unlock(sk);
2360 /* Never glue messages from different writers */
2361 if (!unix_skb_scm_eq(skb, &scm))
2363 } else if (test_bit(SOCK_PASSCRED, &sock->flags)) {
2364 /* Copy credentials */
2365 scm_set_cred(&scm, UNIXCB(skb).pid, UNIXCB(skb).uid, UNIXCB(skb).gid);
2366 unix_set_secdata(&scm, skb);
2370 /* Copy address just once */
2371 if (state->msg && state->msg->msg_name) {
2372 DECLARE_SOCKADDR(struct sockaddr_un *, sunaddr,
2373 state->msg->msg_name);
2374 unix_copy_addr(state->msg, skb->sk);
2378 chunk = min_t(unsigned int, unix_skb_len(skb) - skip, size);
2380 chunk = state->recv_actor(skb, skip, chunk, state);
2381 drop_skb = !unix_skb_len(skb);
2382 /* skb is only safe to use if !drop_skb */
2393 /* the skb was touched by a concurrent reader;
2394 * we should not expect anything from this skb
2395 * anymore and assume it invalid - we can be
2396 * sure it was dropped from the socket queue
2398 * let's report a short read
2404 /* Mark read part of skb as used */
2405 if (!(flags & MSG_PEEK)) {
2406 UNIXCB(skb).consumed += chunk;
2408 sk_peek_offset_bwd(sk, chunk);
2410 if (UNIXCB(skb).fp) {
2411 spin_lock(&sk->sk_receive_queue.lock);
2412 scm_stat_del(sk, skb);
2413 spin_unlock(&sk->sk_receive_queue.lock);
2414 unix_detach_fds(&scm, skb);
2417 if (unix_skb_len(skb))
2420 skb_unlink(skb, &sk->sk_receive_queue);
2426 /* It is questionable, see note in unix_dgram_recvmsg.
2429 scm.fp = scm_fp_dup(UNIXCB(skb).fp);
2431 sk_peek_offset_fwd(sk, chunk);
2438 last_len = skb->len;
2439 unix_state_lock(sk);
2440 skb = skb_peek_next(skb, &sk->sk_receive_queue);
2443 unix_state_unlock(sk);
2448 mutex_unlock(&u->iolock);
2450 scm_recv(sock, state->msg, &scm, flags);
2454 return copied ? : err;
2457 static int unix_stream_read_actor(struct sk_buff *skb,
2458 int skip, int chunk,
2459 struct unix_stream_read_state *state)
2463 ret = skb_copy_datagram_msg(skb, UNIXCB(skb).consumed + skip,
2465 return ret ?: chunk;
2468 static int unix_stream_recvmsg(struct socket *sock, struct msghdr *msg,
2469 size_t size, int flags)
2471 struct unix_stream_read_state state = {
2472 .recv_actor = unix_stream_read_actor,
2479 return unix_stream_read_generic(&state, true);
2482 static int unix_stream_splice_actor(struct sk_buff *skb,
2483 int skip, int chunk,
2484 struct unix_stream_read_state *state)
2486 return skb_splice_bits(skb, state->socket->sk,
2487 UNIXCB(skb).consumed + skip,
2488 state->pipe, chunk, state->splice_flags);
2491 static ssize_t unix_stream_splice_read(struct socket *sock, loff_t *ppos,
2492 struct pipe_inode_info *pipe,
2493 size_t size, unsigned int flags)
2495 struct unix_stream_read_state state = {
2496 .recv_actor = unix_stream_splice_actor,
2500 .splice_flags = flags,
2503 if (unlikely(*ppos))
2506 if (sock->file->f_flags & O_NONBLOCK ||
2507 flags & SPLICE_F_NONBLOCK)
2508 state.flags = MSG_DONTWAIT;
2510 return unix_stream_read_generic(&state, false);
2513 static int unix_shutdown(struct socket *sock, int mode)
2515 struct sock *sk = sock->sk;
2518 if (mode < SHUT_RD || mode > SHUT_RDWR)
2521 * SHUT_RD (0) -> RCV_SHUTDOWN (1)
2522 * SHUT_WR (1) -> SEND_SHUTDOWN (2)
2523 * SHUT_RDWR (2) -> SHUTDOWN_MASK (3)
2527 unix_state_lock(sk);
2528 sk->sk_shutdown |= mode;
2529 other = unix_peer(sk);
2532 unix_state_unlock(sk);
2533 sk->sk_state_change(sk);
2536 (sk->sk_type == SOCK_STREAM || sk->sk_type == SOCK_SEQPACKET)) {
2540 if (mode&RCV_SHUTDOWN)
2541 peer_mode |= SEND_SHUTDOWN;
2542 if (mode&SEND_SHUTDOWN)
2543 peer_mode |= RCV_SHUTDOWN;
2544 unix_state_lock(other);
2545 other->sk_shutdown |= peer_mode;
2546 unix_state_unlock(other);
2547 other->sk_state_change(other);
2548 if (peer_mode == SHUTDOWN_MASK)
2549 sk_wake_async(other, SOCK_WAKE_WAITD, POLL_HUP);
2550 else if (peer_mode & RCV_SHUTDOWN)
2551 sk_wake_async(other, SOCK_WAKE_WAITD, POLL_IN);
2559 long unix_inq_len(struct sock *sk)
2561 struct sk_buff *skb;
2564 if (sk->sk_state == TCP_LISTEN)
2567 spin_lock(&sk->sk_receive_queue.lock);
2568 if (sk->sk_type == SOCK_STREAM ||
2569 sk->sk_type == SOCK_SEQPACKET) {
2570 skb_queue_walk(&sk->sk_receive_queue, skb)
2571 amount += unix_skb_len(skb);
2573 skb = skb_peek(&sk->sk_receive_queue);
2577 spin_unlock(&sk->sk_receive_queue.lock);
2581 EXPORT_SYMBOL_GPL(unix_inq_len);
2583 long unix_outq_len(struct sock *sk)
2585 return sk_wmem_alloc_get(sk);
2587 EXPORT_SYMBOL_GPL(unix_outq_len);
2589 static int unix_open_file(struct sock *sk)
2595 if (!ns_capable(sock_net(sk)->user_ns, CAP_NET_ADMIN))
2598 if (!smp_load_acquire(&unix_sk(sk)->addr))
2601 path = unix_sk(sk)->path;
2607 fd = get_unused_fd_flags(O_CLOEXEC);
2611 f = dentry_open(&path, O_PATH, current_cred());
2625 static int unix_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
2627 struct sock *sk = sock->sk;
2633 amount = unix_outq_len(sk);
2634 err = put_user(amount, (int __user *)arg);
2637 amount = unix_inq_len(sk);
2641 err = put_user(amount, (int __user *)arg);
2644 err = unix_open_file(sk);
2653 #ifdef CONFIG_COMPAT
2654 static int unix_compat_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
2656 return unix_ioctl(sock, cmd, (unsigned long)compat_ptr(arg));
2660 static __poll_t unix_poll(struct file *file, struct socket *sock, poll_table *wait)
2662 struct sock *sk = sock->sk;
2665 sock_poll_wait(file, sock, wait);
2668 /* exceptional events? */
2671 if (sk->sk_shutdown == SHUTDOWN_MASK)
2673 if (sk->sk_shutdown & RCV_SHUTDOWN)
2674 mask |= EPOLLRDHUP | EPOLLIN | EPOLLRDNORM;
2677 if (!skb_queue_empty_lockless(&sk->sk_receive_queue))
2678 mask |= EPOLLIN | EPOLLRDNORM;
2680 /* Connection-based need to check for termination and startup */
2681 if ((sk->sk_type == SOCK_STREAM || sk->sk_type == SOCK_SEQPACKET) &&
2682 sk->sk_state == TCP_CLOSE)
2686 * we set writable also when the other side has shut down the
2687 * connection. This prevents stuck sockets.
2689 if (unix_writable(sk))
2690 mask |= EPOLLOUT | EPOLLWRNORM | EPOLLWRBAND;
2695 static __poll_t unix_dgram_poll(struct file *file, struct socket *sock,
2698 struct sock *sk = sock->sk, *other;
2699 unsigned int writable;
2702 sock_poll_wait(file, sock, wait);
2705 /* exceptional events? */
2706 if (sk->sk_err || !skb_queue_empty_lockless(&sk->sk_error_queue))
2708 (sock_flag(sk, SOCK_SELECT_ERR_QUEUE) ? EPOLLPRI : 0);
2710 if (sk->sk_shutdown & RCV_SHUTDOWN)
2711 mask |= EPOLLRDHUP | EPOLLIN | EPOLLRDNORM;
2712 if (sk->sk_shutdown == SHUTDOWN_MASK)
2716 if (!skb_queue_empty_lockless(&sk->sk_receive_queue))
2717 mask |= EPOLLIN | EPOLLRDNORM;
2719 /* Connection-based need to check for termination and startup */
2720 if (sk->sk_type == SOCK_SEQPACKET) {
2721 if (sk->sk_state == TCP_CLOSE)
2723 /* connection hasn't started yet? */
2724 if (sk->sk_state == TCP_SYN_SENT)
2728 /* No write status requested, avoid expensive OUT tests. */
2729 if (!(poll_requested_events(wait) & (EPOLLWRBAND|EPOLLWRNORM|EPOLLOUT)))
2732 writable = unix_writable(sk);
2734 unix_state_lock(sk);
2736 other = unix_peer(sk);
2737 if (other && unix_peer(other) != sk &&
2738 unix_recvq_full(other) &&
2739 unix_dgram_peer_wake_me(sk, other))
2742 unix_state_unlock(sk);
2746 mask |= EPOLLOUT | EPOLLWRNORM | EPOLLWRBAND;
2748 sk_set_bit(SOCKWQ_ASYNC_NOSPACE, sk);
2753 #ifdef CONFIG_PROC_FS
2755 #define BUCKET_SPACE (BITS_PER_LONG - (UNIX_HASH_BITS + 1) - 1)
2757 #define get_bucket(x) ((x) >> BUCKET_SPACE)
2758 #define get_offset(x) ((x) & ((1L << BUCKET_SPACE) - 1))
2759 #define set_bucket_offset(b, o) ((b) << BUCKET_SPACE | (o))
2761 static struct sock *unix_from_bucket(struct seq_file *seq, loff_t *pos)
2763 unsigned long offset = get_offset(*pos);
2764 unsigned long bucket = get_bucket(*pos);
2766 unsigned long count = 0;
2768 for (sk = sk_head(&unix_socket_table[bucket]); sk; sk = sk_next(sk)) {
2769 if (sock_net(sk) != seq_file_net(seq))
2771 if (++count == offset)
2778 static struct sock *unix_next_socket(struct seq_file *seq,
2782 unsigned long bucket;
2784 while (sk > (struct sock *)SEQ_START_TOKEN) {
2788 if (sock_net(sk) == seq_file_net(seq))
2793 sk = unix_from_bucket(seq, pos);
2798 bucket = get_bucket(*pos) + 1;
2799 *pos = set_bucket_offset(bucket, 1);
2800 } while (bucket < ARRAY_SIZE(unix_socket_table));
2805 static void *unix_seq_start(struct seq_file *seq, loff_t *pos)
2806 __acquires(unix_table_lock)
2808 spin_lock(&unix_table_lock);
2811 return SEQ_START_TOKEN;
2813 if (get_bucket(*pos) >= ARRAY_SIZE(unix_socket_table))
2816 return unix_next_socket(seq, NULL, pos);
2819 static void *unix_seq_next(struct seq_file *seq, void *v, loff_t *pos)
2822 return unix_next_socket(seq, v, pos);
2825 static void unix_seq_stop(struct seq_file *seq, void *v)
2826 __releases(unix_table_lock)
2828 spin_unlock(&unix_table_lock);
2831 static int unix_seq_show(struct seq_file *seq, void *v)
2834 if (v == SEQ_START_TOKEN)
2835 seq_puts(seq, "Num RefCount Protocol Flags Type St "
2839 struct unix_sock *u = unix_sk(s);
2842 seq_printf(seq, "%pK: %08X %08X %08X %04X %02X %5lu",
2844 refcount_read(&s->sk_refcnt),
2846 s->sk_state == TCP_LISTEN ? __SO_ACCEPTCON : 0,
2849 (s->sk_state == TCP_ESTABLISHED ? SS_CONNECTED : SS_UNCONNECTED) :
2850 (s->sk_state == TCP_ESTABLISHED ? SS_CONNECTING : SS_DISCONNECTING),
2853 if (u->addr) { // under unix_table_lock here
2858 len = u->addr->len - sizeof(short);
2859 if (!UNIX_ABSTRACT(s))
2865 for ( ; i < len; i++)
2866 seq_putc(seq, u->addr->name->sun_path[i] ?:
2869 unix_state_unlock(s);
2870 seq_putc(seq, '\n');
2876 static const struct seq_operations unix_seq_ops = {
2877 .start = unix_seq_start,
2878 .next = unix_seq_next,
2879 .stop = unix_seq_stop,
2880 .show = unix_seq_show,
2884 static const struct net_proto_family unix_family_ops = {
2886 .create = unix_create,
2887 .owner = THIS_MODULE,
2891 static int __net_init unix_net_init(struct net *net)
2893 int error = -ENOMEM;
2895 net->unx.sysctl_max_dgram_qlen = 10;
2896 if (unix_sysctl_register(net))
2899 #ifdef CONFIG_PROC_FS
2900 if (!proc_create_net("unix", 0, net->proc_net, &unix_seq_ops,
2901 sizeof(struct seq_net_private))) {
2902 unix_sysctl_unregister(net);
2911 static void __net_exit unix_net_exit(struct net *net)
2913 unix_sysctl_unregister(net);
2914 remove_proc_entry("unix", net->proc_net);
2917 static struct pernet_operations unix_net_ops = {
2918 .init = unix_net_init,
2919 .exit = unix_net_exit,
2922 static int __init af_unix_init(void)
2926 BUILD_BUG_ON(sizeof(struct unix_skb_parms) > sizeof_field(struct sk_buff, cb));
2928 rc = proto_register(&unix_proto, 1);
2930 pr_crit("%s: Cannot create unix_sock SLAB cache!\n", __func__);
2934 sock_register(&unix_family_ops);
2935 register_pernet_subsys(&unix_net_ops);
2940 static void __exit af_unix_exit(void)
2942 sock_unregister(PF_UNIX);
2943 proto_unregister(&unix_proto);
2944 unregister_pernet_subsys(&unix_net_ops);
2947 /* Earlier than device_initcall() so that other drivers invoking
2948 request_module() don't end up in a loop when modprobe tries
2949 to use a UNIX socket. But later than subsys_initcall() because
2950 we depend on stuff initialised there */
2951 fs_initcall(af_unix_init);
2952 module_exit(af_unix_exit);
2954 MODULE_LICENSE("GPL");
2955 MODULE_ALIAS_NETPROTO(PF_UNIX);
projects / linux-2.6-microblaze.git / blob